General

  • Target

    f6e321d1103b4f2521616da15e935dfd_JaffaCakes118

  • Size

    602KB

  • Sample

    240418-alr98scg9z

  • MD5

    f6e321d1103b4f2521616da15e935dfd

  • SHA1

    3421badd03d55870bd3dcb03be0636f75efc66c6

  • SHA256

    202451323a5c504e74884d9617acbca201188951c3458a40bccf5a10aa5b8c05

  • SHA512

    08633fd48b2a3d60e5c0e0494976c7bbf9a7c3590d91ec0bb7619804a6f222235bb8939a469df615f34a03f09a91da81b37d8cedecc5ac2facb7156595699e73

  • SSDEEP

    12288:txROxXp2BAwHeb6qPKqDhYYQ3txQPlj7vP0Npa3Hw5ob/FCsFx:v2A5+b6qC4Q3txC3vP0Npa3gk/FCs

Score
10/10

Malware Config

Targets

    • Target

      f6e321d1103b4f2521616da15e935dfd_JaffaCakes118

    • Size

      602KB

    • MD5

      f6e321d1103b4f2521616da15e935dfd

    • SHA1

      3421badd03d55870bd3dcb03be0636f75efc66c6

    • SHA256

      202451323a5c504e74884d9617acbca201188951c3458a40bccf5a10aa5b8c05

    • SHA512

      08633fd48b2a3d60e5c0e0494976c7bbf9a7c3590d91ec0bb7619804a6f222235bb8939a469df615f34a03f09a91da81b37d8cedecc5ac2facb7156595699e73

    • SSDEEP

      12288:txROxXp2BAwHeb6qPKqDhYYQ3txQPlj7vP0Npa3Hw5ob/FCsFx:v2A5+b6qC4Q3txC3vP0Npa3gk/FCs

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks